Microsoft Windows 10 21H2 vulnerabilities

1,584 known vulnerabilities affecting microsoft/windows_10_21h2.

Total CVEs

1,584

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL39HIGH1118MEDIUM421LOW6

Vulnerabilities

Page 60 of 80

CVE-2023-24023MEDIUMCVSS 6.8fixed in 10.0.19043.36932023-11-28

CVE-2023-24023 [MEDIUM] CVE-2023-24023: Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow certain man-in-the-middle attacks that force a short key length, and might lead to discovery of the encryption key and live injection, aka BLUFFS.

nvd

CVE-2023-36028CRITICALCVSS 9.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36028 [CRITICAL] CWE-122 CVE-2023-36028: Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability Microsoft Protected Extensible Authentication Protocol (PEAP) Remote Code Execution Vulnerability

nvd

CVE-2023-36397CRITICALCVSS 9.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36397 [CRITICAL] CWE-126 CVE-2023-36397: Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability

nvd

CVE-2023-36401HIGHCVSS 7.2fixed in 10.0.19041.36932023-11-14

CVE-2023-36401 [HIGH] CWE-190 CVE-2023-36401: Microsoft Remote Registry Service Remote Code Execution Vulnerability Microsoft Remote Registry Service Remote Code Execution Vulnerability

nvd

CVE-2023-36405HIGHCVSS 7.0fixed in 10.0.19041.36932023-11-14

CVE-2023-36405 [HIGH] CWE-362 CVE-2023-36405: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2023-36394HIGHCVSS 7.0fixed in 10.0.19041.36932023-11-14

CVE-2023-36394 [HIGH] CWE-59 CVE-2023-36394: Windows Search Service Elevation of Privilege Vulnerability Windows Search Service Elevation of Privilege Vulnerability

nvd

CVE-2023-36705HIGHCVSS 7.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36705 [HIGH] CWE-59 CVE-2023-36705: Windows Installer Elevation of Privilege Vulnerability Windows Installer Elevation of Privilege Vulnerability

nvd

CVE-2023-36427HIGHCVSS 7.0fixed in 10.0.19041.36932023-11-14

CVE-2023-36427 [HIGH] CVE-2023-36427: Windows Hyper-V Elevation of Privilege Vulnerability Windows Hyper-V Elevation of Privilege Vulnerability

nvd

CVE-2023-36393HIGHCVSS 7.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36393 [HIGH] CWE-426 CVE-2023-36393: Windows User Interface Application Core Remote Code Execution Vulnerability Windows User Interface Application Core Remote Code Execution Vulnerability

nvd

CVE-2023-36719HIGHCVSS 7.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36719 [HIGH] CWE-20 CVE-2023-36719: Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability Microsoft Speech Application Programming Interface (SAPI) Elevation of Privilege Vulnerability

nvd

CVE-2023-36403HIGHCVSS 7.0fixed in 10.0.19041.36932023-11-14

CVE-2023-36403 [HIGH] CWE-591 CVE-2023-36403: Windows Kernel Elevation of Privilege Vulnerability Windows Kernel Elevation of Privilege Vulnerability

nvd

CVE-2023-36033HIGHCVSS 7.8KEVfixed in 10.0.19041.36932023-11-14

CVE-2023-36033 [HIGH] CWE-822 CVE-2023-36033: Windows DWM Core Library Elevation of Privilege Vulnerability Windows DWM Core Library Elevation of Privilege Vulnerability

nvd

CVE-2023-36425HIGHCVSS 8.0fixed in 10.0.19041.36932023-11-14

CVE-2023-36425 [HIGH] CWE-122 CVE-2023-36425: Windows Distributed File System (DFS) Remote Code Execution Vulnerability Windows Distributed File System (DFS) Remote Code Execution Vulnerability

nvd

CVE-2023-36036HIGHCVSS 7.8KEVfixed in 10.0.19041.36932023-11-14

CVE-2023-36036 [HIGH] CWE-122 CVE-2023-36036: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

nvd

CVE-2023-36423HIGHCVSS 8.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36423 [HIGH] CWE-122 CVE-2023-36423: Microsoft Remote Registry Service Remote Code Execution Vulnerability Microsoft Remote Registry Service Remote Code Execution Vulnerability

nvd

CVE-2023-36400HIGHCVSS 8.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36400 [HIGH] CWE-122 CVE-2023-36400: Windows HMAC Key Derivation Elevation of Privilege Vulnerability Windows HMAC Key Derivation Elevation of Privilege Vulnerability

nvd

CVE-2023-36017HIGHCVSS 8.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36017 [HIGH] CWE-843 CVE-2023-36017: Windows Scripting Engine Memory Corruption Vulnerability Windows Scripting Engine Memory Corruption Vulnerability

nvd

CVE-2023-36402HIGHCVSS 8.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36402 [HIGH] CWE-122 CVE-2023-36402: Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability

nvd

CVE-2023-36047HIGHCVSS 7.8fixed in 10.0.19041.36932023-11-14

CVE-2023-36047 [HIGH] CWE-59 CVE-2023-36047: Windows Authentication Elevation of Privilege Vulnerability Windows Authentication Elevation of Privilege Vulnerability

nvd

CVE-2023-36424HIGHCVSS 7.8KEVfixed in 10.0.19041.36932023-11-14

CVE-2023-36424 [HIGH] CWE-125 CVE-2023-36424: Windows Common Log File System Driver Elevation of Privilege Vulnerability Windows Common Log File System Driver Elevation of Privilege Vulnerability

nvd

← Previous60 / 80Next →